Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/E1_acDOC8GzxKDePYCi5udlCOoc.roa
File: E1_acDOC8GzxKDePYCi5udlCOoc.roa (raw, json)
Hash identifier: ftupYhXsZ4jtLj4I05mnkXz1oDnJqKq1gHz8Lbjr2UI=
Subject key identifier: 13:5F:DA:70:33:82:F0:6C:F1:28:37:8F:60:28:B9:B9:D9:42:3A:87
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28029768
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/E1_acDOC8GzxKDePYCi5udlCOoc.roa
Signing time: Sat 01 Jan 2022 16:09:24 +0000
ROA not before: Sat 01 Jan 2022 16:09:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61433
IP address blocks: 93.171.164.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671258472 (0x28029768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=135fda703382f06cf128378f6028b9b9d9423a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:6e:05:58:2a:96:33:15:09:d0:19:94:b4:
fe:d9:7e:23:30:4b:b1:ad:0e:2d:da:19:89:d0:26:
dc:ce:df:4d:1c:cd:b7:90:14:0f:37:72:9d:d6:f8:
fb:18:00:f2:b8:91:a6:76:73:fe:53:80:8e:db:5f:
64:7f:3a:e4:ef:e5:b9:55:e7:03:c2:65:7a:82:9b:
f0:e9:f2:39:56:cd:73:e6:9b:30:dd:25:47:93:53:
18:b3:76:82:66:dc:38:6f:95:5b:b0:1a:cb:11:b8:
46:5b:8d:31:bf:94:aa:7b:5c:7f:15:3a:47:6c:9f:
f0:fb:a7:cc:1c:f1:8c:9c:e9:60:ef:cd:b4:96:ca:
20:62:71:b7:97:eb:30:0e:e3:eb:aa:c4:80:24:78:
11:9d:59:d1:cf:dd:06:f1:54:f7:cf:73:99:bd:de:
15:65:ed:0b:13:d6:06:b7:f4:98:66:78:e8:20:b7:
0a:1d:7b:4d:fa:45:1c:c9:de:00:3f:45:4a:e0:aa:
13:26:de:04:c2:37:5a:61:9c:d9:11:f0:df:f5:77:
6d:73:53:7a:7f:73:ca:b7:09:4f:7e:48:5a:b6:5f:
c3:11:26:f0:24:ff:84:fc:60:f5:fe:f6:00:c6:8f:
6a:07:98:e0:6d:14:a3:38:18:18:0e:85:9e:75:0f:
62:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5F:DA:70:33:82:F0:6C:F1:28:37:8F:60:28:B9:B9:D9:42:3A:87
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/E1_acDOC8GzxKDePYCi5udlCOoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.164.0/23
Signature Algorithm: sha256WithRSAEncryption
09:c8:69:6a:5e:c1:10:9f:f8:0f:e2:86:e5:c4:4a:c0:3d:98:
8a:41:db:bf:b8:3f:42:ae:de:4b:76:b3:0f:d4:92:e1:9b:09:
cd:82:c1:87:49:f4:ca:66:3f:25:5c:61:ac:19:e8:fb:c8:09:
56:89:7d:7a:9a:e9:d0:ae:e8:a6:d3:8b:08:78:df:d6:87:6f:
2a:92:f9:05:3e:71:cf:04:5c:85:b2:29:4d:77:46:63:68:dd:
73:74:27:3e:fd:54:36:52:8a:d2:3a:83:9d:bb:be:82:eb:ae:
65:7e:89:76:9b:b6:e7:75:2c:9e:f1:d0:0f:17:da:53:3b:fc:
ae:a4:5f:39:16:e2:af:9b:57:7c:d7:f6:4f:78:6e:54:93:ba:
7f:51:cd:5e:94:06:43:f8:8a:42:3d:70:ce:c4:7f:2c:a4:31:
48:99:e9:c1:d5:90:c2:cb:c1:c8:45:1e:14:71:c3:93:d4:42:
8f:ff:f2:13:33:95:a1:20:6b:38:5b:dc:2e:51:73:3c:9f:01:
27:27:d6:6f:26:53:51:48:94:98:b7:fb:17:7c:d0:8a:7f:80:
ed:d9:ba:b5:de:09:93:aa:06:2a:1f:a5:ef:8e:0c:d8:8a:19:
b7:85:45:f4:97:9e:56:e3:b9:8b:e0:cc:74:9a:64:df:2f:e2:
e6:99:4b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:42 2025 by rpki-client